Техническая информация
- [<HKLM>\SOFTWARE\Classes\1003file\shell\open\command] '' = ''
- [<HKLM>\SOFTWARE\Classes\1004file\shell\open\command] '' = ''
- [<HKLM>\SOFTWARE\Classes\1001file\shell\open\command] '' = ''
- [<HKLM>\SOFTWARE\Classes\1002file\shell\open\command] '' = ''
- Средство контроля пользовательских учетных записей (UAC)
- 'C:\Microsoft1401abc\boot.exe'
- '<SYSTEM32>\ping.exe' 127.0.0.1 -n 2
- '%WINDIR%\regedit.exe' /s "%TEMP%\HZ$D.632.2626\sfx.reg"
- '<SYSTEM32>\wscript.exe' "C:\Microsoft1401abc\1.vbs"
- C:\abc1401.dat
- %WINDIR%\avi.ico
- C:\Microsoft1401abc\skery\skery.lnk
- C:\closs.bat
- %WINDIR%\doc.ico
- %TEMP%\HZ$D.632.2626\sfx.reg
- %TEMP%\HZ~1.tmp.bat
- %WINDIR%\jpg.ico
- %WINDIR%\txt.ico
- C:\Microsoft1401abc\Rar.exe
- C:\Microsoft1401abc\skery\02014.vbe
- C:\Microsoft1401abc\1.vbs
- C:\Microsoft1401abc\boot.exe
- C:\Microsoft1401abc\skery\ATIdir.sys
- C:\Microsoft1401abc\skery\inst.ini
- C:\Microsoft1401abc\skery\lang.lnk
- C:\Microsoft1401abc\skery\info.ini
- C:\Microsoft1401abc\skery\info101.ini
- C:\Microsoft1401abc\boot.exe
- ClassName: 'RegEdit_RegEdit' WindowName: '(null)'
- ClassName: 'Shell_TrayWnd' WindowName: '(null)'
- ClassName: 'EDIT' WindowName: '(null)'